1. POLICY

a. It is NASA's policy to define security responsibilities on the oversight
and management of all national security programs within NASA. This
encompasses Special Access Programs (SAPs) and Sensitive Compartmented
Information (SCI), to include all national security programs managed by
NASA supporting other United States government organizations.

b. It is NASA's policy to ensure all risk assumed by NASA to protect
national security programs is coordinated with the appropriate offices.
This directive establishes and identifies the security responsibilities
and functions of the NASA Special Access Program Central Official (SAPCO)
and the NASA Office of Protective Services (OPS) and its role as appointed
by the NASA Administrator for ensuring the protection of national security
programs security policy.

2. APPLICABILITY

a. This NPD is applicable to NASA Headquarters and NASA Centers,
including Component Facilities and Technical and Service Support Centers.

b. This directive applies to the Jet Propulsion Laboratory (JPL) a Federally Funded Research and Development Center (FFRDC), and other contractors only to the extent specified or referenced in applicable contracts.

c. In this directive, all mandatory actions (i.e., requirements) are denoted by statements containing the term "shall." The terms: "may" or "can" denote discretionary privilege or permission, "should" denotes a good practice and is recommended, but not required, "will" denotes expected outcome, and "are/is" denotes descriptive material.

d. U.S. Government agencies whose personnel require access to national
security programs relating to NASA are subject to this NPD.

e. In this directive, all document citations are assumed to be the latest version unless otherwise noted.

4. APPLICABLE DOCUMENTS AND FORMS

None.

5. RESPONSIBILITY

a. The Administrator or designee:

(1) Renders the final decision on proposals to establish or terminate
NASA national security programs, alter the scope of any approved national
security program activity, and use NASA resources to support national security
program intelligence activities.
(2) Establishes and commit NASA to protecting national security programs.
(3) Establishes and oversee the development of security policy,
requirements, and guidance for SAP and SCI national security activities.
(4) Appoints responsible individuals for all national security program
activities. The appointed individuals serve as the primary point of
contact with Congress, the agencies of the Executive Branch, and on all issues
relating to national security programs.

b. The Assistant Administrator (AA) or designee for Protective Services:

(1) Develops, coordinate, and promulgate all NASA national security
program policies.

(2) Performs security oversight of NASA components managing national
security program assets in accordance with established security policies
and guidance.

(3) Ensures national security programs' security policies are integrated
into and consistent with the development of NASA mission needs, national
security and defense strategies, technology development, implementation,
and operations (including contingency operations).

(4) Direct credentialed NASA Counterintelligence Special Agents to assess
and/or investigate suspected or actual counterintelligence matters regarding
NASA's national security programs. Actions of this nature will be coordinated
with the NASA OIG per established protocols.

(f) Develop, coordinate, promulgate, and oversee the implementation of
special security countermeasures policy, including those associated with
arms control and nonproliferation initiatives that could impact DoD-
sensitive equities.

(g) Submit SAP establishment requests to the Office of the President
through the National Security Council and coordinate new activities with
the DoD Under Secretary of Defense for Acquisition, Technology, and
Logistics.

(h) Develop and maintain a partnership with the program management,
providing security cost, risk analysis of the program security posture,
and security guidance to NASA program managers.

d. Develop and implement processes and procedures for SCI holders to report foreign travel; provide foreign intelligence threat briefings associated with the country/countries to be visited; and conduct debriefings after completion of the travel to determine if the SCI holder was a target of foreign intelligence interest. Inform the NASA Counterintelligence Directorate of the travel so that they can comply with NASA CI policy, as appropriate.

6. DELEGATION OF AUTHORITY

a. The NASA Administrator may redelegate authority as identified in
this NPD.

b. Each delegation will identify a specific individual to serve as the
designee for the positions identified Sections in 5.a and 5.c of this NPD.

c. The delegation of authority shall not be redelegated further without
the approval of the NASA Administrator.

d. The SAPCO authority may be delegated to a subordinate official. Such a
delegation will identify, by name and position title, the subordinate
official and the specific authority that is being delegated. Any further
delegation of authority must be approved by the SAPCO and must also
identify, by name and position title, the subordinate official.

Special Access Programs (SAP) - Any program established and approved
under EO 12958 that imposes need-to-know or access controls beyond those
normally required for access to collateral Confidential, Secret, or Top
Secret information.

ATTACHMENT B. REFERENCES

Access to Classified Information Procedures, 50 U.S.C. 435.

Reforming Processes Related to Suitability for Government
Employment, Fitness for Contractor Employees, and Eligibility for Access
to Classified National Security Information, EO 13467 (2008).